I found an issue using the following shindig api in rave: gadgets.views.openEmbeddedExperience(resultCallback, navigateCallback, dataModel, opt_params);
I have a gadget on my rave dashboard. From within this gadget, I call gadgets.views.openEmbeddedExperience to open a new gadget in a modal dialog. When the modal dialog appears, I get the error: HTTP Status 401 - Malformed security token %st%Invalid security token %st% My understanding of the issue is that the metadata for this gadget is not preloaded when this api call is made. Instead, gadget metadata is fetched once on page load for gadgets that are embedded in the page. For gadgets that are dynamically added, there will be no metadata and therefore no security token. The only way to get around the issue at the moment is to add the target gadget to the page. This properly preloads the gadget metadata and retrieves the security token and the call to gadgets.views.openEmbeddedExperience works as expected. For my use case, this workaround will not suffice. I am willing to dig into this issue and provide a fix. Is there a specific place within the code where I should look first? Thanks, Robert O'Neill
